Ensure that AWS Config service is enabled in all regions in order to have complete visibility over your AWS infrastructure configuration changes.
Once enabled, the Config service detects your existing AWS resources and records their current configurations and any changes made to them later. The data recorded by this service can be extremely useful for your compliance team during security auditing or troubleshooting sessions, as it can determine how a resource was configured at a certain point in time and what relationships had with other resources. Note: The AWS resources currently supported by the Config service are VPC, EC2, EBS, IAM and CloudTrail.
To determine if AWS Config is enabled in the current AWS region, perform the following:
To enable AWS Config in all regions available, perform the following: